Skip links

eMail Server

Visibility and control to defeat advanced attacks.
Advanced Malware Protection (AMP) is a comprehensive solution that enables malware detection and blocking, continuous analysis, and retrospective alerting. It uses the vast cloud security intelligence networks of both Cisco and Sourcefire (now part of Cisco).

Global threat intelligence
Our experts analyse millions of malware samples and terabytes of data per day and push that intelligence to AMP. AMP then correlates files, telemetry data, and file behavior against this context-rich knowledge base to proactively defend against known and emerging threats.

Advanced sandboxing capabilities perform automated static and dynamic analysis of files against more than 700 behavioral indicators. These analyses uncover stealthy threats and help your security team understand, prioritise, and block sophisticated attacks.
Point-in-time malware detection and blocking
Block malware trying to enter your network in real time. Using AV detection engines, one-to-one signature matching, machine learning, and fuzzy fingerprinting, AMP analyses files at point of entry to catch known and unknown malware. The result? Faster time to detection and automatic protection.
Continuous analysis and retrospective security
Once a file enters your network, AMP continues to watch, analyse, and record its activity, regardless of the file’s disposition. If malicious behavior is spotted later, AMP sends your security team a retrospective alert that tells them where the malware came from, where it’s been, and what it’s doing. In a few clicks, you can contain and remediate it.